Page MenuHomeVyOS Platform
Create Task
Maniphest T7930

VPP: Changing NAT44 Settings Resets `forwarding_enabled` to False
Closed, ResolvedPublicBUG
Actions

Description

It seems that changing any NAT44 setting resets the forwarding_enabled flag to False.

For example, with the following initial configuration:

set vpp settings cpu main-core '2'
set vpp settings interface eth0 driver 'dpdk'
set vpp settings memory main-heap-size '1G'
set vpp settings unix poll-sleep-usec '1000'

Check the current NAT44 forwarding state:

sudo python3
from vyos.vpp import VPPControl
vpp = VPPControl()
vpp.api.nat44_show_running_config().forwarding_enabled

Output:

>>> vpp.api.nat44_show_running_config().forwarding_enabled
True

Now configure NAT:

set vpp nat44 address-pool translation address '192.0.2.1'
set vpp nat44 interface inside 'eth0'
set vpp nat44 interface outside 'eth0'

Check again:

>>> vpp.api.nat44_show_running_config().forwarding_enabled
False

As shown, simply modifying NAT44 settings unintentionally disables NAT44 forwarding. The same effect on this option occurs with many other NAT44 settings. I haven't tested all of them, so it's possible that any NAT configuration change resets the option.

Details

Version
2025.10.12-0019-rolling
Is it a breaking change?
Perfectly compatible
Issue type
Bug (incorrect behavior)

Related Objects
Search...

Event Timeline

zsdc created this task.Oct 13 2025, 8:28 PM
Viacheslav added a parent task: T7070: VPP related bugs the root task.Oct 13 2025, 9:38 PM
pasik subscribed.Oct 14 2025, 6:21 AM
natali-rs1985 changed the task status from Open to In progress.Oct 14 2025, 1:12 PM
natali-rs1985 claimed this task.
natali-rs1985 triaged this task as Normal priority.
natali-rs1985 added a project: VyOS 1.5 Circinus (1.5-stream-2025-Q4).
natali-rs1985 changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
natali-rs1985 added a comment.Oct 16 2025, 8:14 AM

https://github.com/vyos/vyos-1x/pull/4795

natali-rs1985 mentioned this in rVYOSONEXccd60aa1f457: T7930: VPP: Changing NAT44 settings resets `forwarding_enabled` to False.Oct 21 2025, 11:38 AM
Restricted Repository Identity mentioned this in rVYOSONEXfd8794f36b48: Merge pull request #4795 from natali-rs1985/T7930.Oct 21 2025, 11:38 AM
natali-rs1985 closed this task as Resolved.Oct 22 2025, 12:21 PM
natali-rs1985 moved this task from Need Triage to Completed on the VyOS Rolling board.
natali-rs1985 edited projects, added VyOS 1.5 Circinus (1.5-stream-2025-Q3); removed VyOS 1.5 Circinus (1.5-stream-2025-Q4).
natali-rs1985 moved this task from Open to Finished on the VyOS 1.5 Circinus (1.5-stream-2025-Q3) board.
dmbaturin edited projects, added VyOS 1.5 Circinus (2025.11); removed VyOS 1.5 Circinus (1.5-stream-2025-Q3), VyOS Rolling.Wed, Nov 12, 5:33 PM